==================================================================
BUG: KASAN: use-after-free in __read_once_size include/linux/compiler.h:243 [inline] at addr ffff8801cc405de0
BUG: KASAN: use-after-free in atomic_read arch/x86/include/asm/atomic.h:26 [inline] at addr ffff8801cc405de0
BUG: KASAN: use-after-free in static_key_count include/linux/jump_label.h:174 [inline] at addr ffff8801cc405de0
BUG: KASAN: use-after-free in static_key_false include/linux/jump_label.h:184 [inline] at addr ffff8801cc405de0
BUG: KASAN: use-after-free in perf_sw_event include/linux/perf_event.h:1039 [inline] at addr ffff8801cc405de0
BUG: KASAN: use-after-free in __do_page_fault+0xc80/0xd70 arch/x86/mm/fault.c:1438 at addr ffff8801cc405de0
Read of size 8 by task syz-executor0/10156
CPU: 1 PID: 10156 Comm: syz-executor0 Not tainted 4.9.64-gfbb7468 #94
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
 ffff8801d5c7fd88 ffffffff81d90429 ffff8801da155140 ffff8801cc405d90
 ffff8801cc405e48 ffffed0039880bbc ffff8801cc405de0 ffff8801d5c7fdb0
 ffffffff8153a3ac ffffed0039880bbc ffff8801da155140 0000000000000000
Call Trace:
 [<ffffffff81d90429>] __dump_stack lib/dump_stack.c:15 [inline]
 [<ffffffff81d90429>] dump_stack+0xc1/0x128 lib/dump_stack.c:51
 [<ffffffff8153a3ac>] kasan_object_err+0x1c/0x70 mm/kasan/report.c:160
 [<ffffffff8153a66c>] print_address_description mm/kasan/report.c:198 [inline]
 [<ffffffff8153a66c>] kasan_report_error mm/kasan/report.c:287 [inline]
 [<ffffffff8153a66c>] kasan_report.part.1+0x21c/0x500 mm/kasan/report.c:309
 [<ffffffff8153aa09>] kasan_report mm/kasan/report.c:330 [inline]
 [<ffffffff8153aa09>] __asan_report_load8_noabort+0x29/0x30 mm/kasan/report.c:330
 [<ffffffff810ddb10>] __read_once_size include/linux/compiler.h:243 [inline]
 [<ffffffff810ddb10>] atomic_read arch/x86/include/asm/atomic.h:26 [inline]
 [<ffffffff810ddb10>] static_key_count include/linux/jump_label.h:174 [inline]
 [<ffffffff810ddb10>] static_key_false include/linux/jump_label.h:184 [inline]
 [<ffffffff810ddb10>] perf_sw_event include/linux/perf_event.h:1039 [inline]
 [<ffffffff810ddb10>] __do_page_fault+0xc80/0xd70 arch/x86/mm/fault.c:1438
 [<ffffffff810ddc27>] do_page_fault+0x27/0x30 arch/x86/mm/fault.c:1460
 [<ffffffff838aa958>] page_fault+0x28/0x30 arch/x86/entry/entry_64.S:1012
Object at ffff8801cc405d90, in cache vm_area_struct size: 184
Allocated:
PID = 10156
 save_stack_trace+0x16/0x20 arch/x86/kernel/stacktrace.c:57
 save_stack+0x43/0xd0 mm/kasan/kasan.c:495
 set_track mm/kasan/kasan.c:507 [inline]
 kasan_kmalloc+0xad/0xe0 mm/kasan/kasan.c:598
 kasan_slab_alloc+0x12/0x20 mm/kasan/kasan.c:537
 slab_post_alloc_hook mm/slab.h:417 [inline]
 slab_alloc_node mm/slub.c:2715 [inline]
 slab_alloc mm/slub.c:2723 [inline]
 kmem_cache_alloc+0xba/0x290 mm/slub.c:2728
 kmem_cache_zalloc include/linux/slab.h:626 [inline]
 mmap_region+0x587/0xfd0 mm/mmap.c:1662
 do_mmap+0x57b/0xbe0 mm/mmap.c:1473
 do_mmap_pgoff include/linux/mm.h:2018 [inline]
 vm_mmap_pgoff+0x16b/0x1b0 mm/util.c:305
 SYSC_mmap_pgoff mm/mmap.c:1523 [inline]
 SyS_mmap_pgoff+0xd0/0x560 mm/mmap.c:1481
 SYSC_mmap arch/x86/kernel/sys_x86_64.c:95 [inline]
 SyS_mmap+0x16/0x20 arch/x86/kernel/sys_x86_64.c:86
 entry_SYSCALL_64_fastpath+0x23/0xc6
Freed:
PID = 10164
 save_stack_trace+0x16/0x20 arch/x86/kernel/stacktrace.c:57
 save_stack+0x43/0xd0 mm/kasan/kasan.c:495
 set_track mm/kasan/kasan.c:507 [inline]
 kasan_slab_free+0x73/0xc0 mm/kasan/kasan.c:571
 slab_free_hook mm/slub.c:1355 [inline]
 slab_free_freelist_hook mm/slub.c:1377 [inline]
 slab_free mm/slub.c:2958 [inline]
 kmem_cache_free+0xb2/0x2e0 mm/slub.c:2980
 remove_vma+0x11d/0x160 mm/mmap.c:175
 remove_vma_list mm/mmap.c:2482 [inline]
 do_munmap+0x7ff/0xeb0 mm/mmap.c:2705
 mmap_region+0x14d/0xfd0 mm/mmap.c:1635
 do_mmap+0x57b/0xbe0 mm/mmap.c:1473
 do_mmap_pgoff include/linux/mm.h:2018 [inline]
 vm_mmap_pgoff+0x16b/0x1b0 mm/util.c:305
 SYSC_mmap_pgoff mm/mmap.c:1523 [inline]
 SyS_mmap_pgoff+0xd0/0x560 mm/mmap.c:1481
 SYSC_mmap arch/x86/kernel/sys_x86_64.c:95 [inline]
 SyS_mmap+0x16/0x20 arch/x86/kernel/sys_x86_64.c:86
 entry_SYSCALL_64_fastpath+0x23/0xc6
Memory state around the buggy address:
 ffff8801cc405c80: fc fc fc fb fb fb fb fb fb fb fb fb fb fb fb fb
 ffff8801cc405d00: fb fb fb fb fb fb fb fb fb fb fc fc fc fc fc fc
>ffff8801cc405d80: fc fc fb fb fb fb fb fb fb fb fb fb fb fb fb fb
                                                       ^
 ffff8801cc405e00: fb fb fb fb fb fb fb fb fb fc fc fc fc fc fc fc
 ffff8801cc405e80: fc fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
==================================================================
nla_parse: 8 callbacks suppressed
netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'.
netlink: 8 bytes leftover after parsing attributes in process `syz-executor1'.
device gre0 entered promiscuous mode
IPVS: Creating netns size=2536 id=18
netlink: 16 bytes leftover after parsing attributes in process `syz-executor4'.
sg_write: data in/out 822404280/197 bytes for SCSI command 0x12-- guessing data in;
   program syz-executor7 not setting count and/or reply_len properly
netlink: 16 bytes leftover after parsing attributes in process `syz-executor4'.
pktgen: kernel_thread() failed for cpu 0
pktgen: Cannot create thread for cpu 0 (-4)
pktgen: kernel_thread() failed for cpu 1
pktgen: Cannot create thread for cpu 1 (-4)
pktgen: Initialization failed for all threads
device lo entered promiscuous mode
device lo left promiscuous mode
device lo entered promiscuous mode
device lo left promiscuous mode
IPVS: Creating netns size=2536 id=19
IPv6: Can't replace route, no match found
IPv6: Can't replace route, no match found
pktgen: kernel_thread() failed for cpu 0
pktgen: Cannot create thread for cpu 0 (-4)
pktgen: kernel_thread() failed for cpu 1
pktgen: Cannot create thread for cpu 1 (-4)
pktgen: Initialization failed for all threads
9pnet_virtio: no channels available for device ./file0
9pnet_virtio: no channels available for device ./file0
netlink: 16 bytes leftover after parsing attributes in process `syz-executor0'.
device lo entered promiscuous mode
device lo left promiscuous mode
netlink: 16 bytes leftover after parsing attributes in process `syz-executor0'.
device lo entered promiscuous mode
device lo left promiscuous mode
device gre0 entered promiscuous mode
device lo entered promiscuous mode
device lo left promiscuous mode
FAULT_FLAG_ALLOW_RETRY missing 30
CPU: 0 PID: 10704 Comm: syz-executor2 Tainted: G    B           4.9.64-gfbb7468 #94
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
 ffff8801d95c7940 ffffffff81d90429 ffff8801d95c7c20 0000000000000000
 ffff8801a9bc7490 ffff8801d95c7b10 ffff8801a9bc7380 ffff8801d95c7b38
 ffffffff8165e3c7 ffffffff83899ce5 ffff8801d95c7a90 00000001d973a067
Call Trace:
 [<ffffffff81d90429>] __dump_stack lib/dump_stack.c:15 [inline]
 [<ffffffff81d90429>] dump_stack+0xc1/0x128 lib/dump_stack.c:51
 [<ffffffff8165e3c7>] handle_userfault+0xa37/0x1300 fs/userfaultfd.c:323
 [<ffffffff814cd6c1>] do_anonymous_page mm/memory.c:2747 [inline]
 [<ffffffff814cd6c1>] handle_pte_fault mm/memory.c:3488 [inline]
 [<ffffffff814cd6c1>] __handle_mm_fault mm/memory.c:3577 [inline]
 [<ffffffff814cd6c1>] handle_mm_fault+0x1fd1/0x2530 mm/memory.c:3614
 [<ffffffff810dd447>] __do_page_fault+0x5b7/0xd70 arch/x86/mm/fault.c:1396
 [<ffffffff810ddc27>] do_page_fault+0x27/0x30 arch/x86/mm/fault.c:1460
 [<ffffffff838aa958>] page_fault+0x28/0x30 arch/x86/entry/entry_64.S:1012
 [<ffffffff838a9785>] entry_SYSCALL_64_fastpath+0x23/0xc6
device lo entered promiscuous mode
device lo left promiscuous mode
9pnet_virtio: no channels available for device HHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHH
FAULT_FLAG_ALLOW_RETRY missing 30
CPU: 0 PID: 10718 Comm: syz-executor2 Tainted: G    B           4.9.64-gfbb7468 #94
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
 ffff8801d0a2f940 ffffffff81d90429 ffff8801d0a2fc20 0000000000000000
 ffff8801a9bc7910 ffff8801d0a2fb10 ffff8801a9bc7800 ffff8801d0a2fb38
 ffffffff8165e3c7 1ffff1003a145f2f ffff8801d0a2fa90 00000001d218a067
Call Trace:
 [<ffffffff81d90429>] __dump_stack lib/dump_stack.c:15 [inline]
 [<ffffffff81d90429>] dump_stack+0xc1/0x128 lib/dump_stack.c:51
 [<ffffffff8165e3c7>] handle_userfault+0xa37/0x1300 fs/userfaultfd.c:323
 [<ffffffff814cd6c1>] do_anonymous_page mm/memory.c:2747 [inline]
 [<ffffffff814cd6c1>] handle_pte_fault mm/memory.c:3488 [inline]
 [<ffffffff814cd6c1>] __handle_mm_fault mm/memory.c:3577 [inline]
 [<ffffffff814cd6c1>] handle_mm_fault+0x1fd1/0x2530 mm/memory.c:3614
 [<ffffffff810dd447>] __do_page_fault+0x5b7/0xd70 arch/x86/mm/fault.c:1396
 [<ffffffff810ddc27>] do_page_fault+0x27/0x30 arch/x86/mm/fault.c:1460
 [<ffffffff838aa958>] page_fault+0x28/0x30 arch/x86/entry/entry_64.S:1012
 [<ffffffff838a9785>] entry_SYSCALL_64_fastpath+0x23/0xc6
==================================================================
BUG: KASAN: use-after-free in __read_once_size include/linux/compiler.h:243 [inline] at addr ffff8801cd90d338
BUG: KASAN: use-after-free in atomic_read arch/x86/include/asm/atomic.h:26 [inline] at addr ffff8801cd90d338
BUG: KASAN: use-after-free in static_key_count include/linux/jump_label.h:174 [inline] at addr ffff8801cd90d338
BUG: KASAN: use-after-free in static_key_false include/linux/jump_label.h:184 [inline] at addr ffff8801cd90d338
BUG: KASAN: use-after-free in perf_sw_event include/linux/perf_event.h:1039 [inline] at addr ffff8801cd90d338
BUG: KASAN: use-after-free in __do_page_fault+0xc80/0xd70 arch/x86/mm/fault.c:1438 at addr ffff8801cd90d338
Read of size 8 by task syz-executor0/10781
CPU: 0 PID: 10781 Comm: syz-executor0 Tainted: G    B           4.9.64-gfbb7468 #94
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
 ffff8801d1a07d88 ffffffff81d90429 ffff8801da155140 ffff8801cd90d2e8
 ffff8801cd90d3a0 ffffed0039b21a67 ffff8801cd90d338 ffff8801d1a07db0
 ffffffff8153a3ac ffffed0039b21a67 ffff8801da155140 0000000000000000
Call Trace:
 [<ffffffff81d90429>] __dump_stack lib/dump_stack.c:15 [inline]
 [<ffffffff81d90429>] dump_stack+0xc1/0x128 lib/dump_stack.c:51
 [<ffffffff8153a3ac>] kasan_object_err+0x1c/0x70 mm/kasan/report.c:160
 [<ffffffff8153a66c>] print_address_description mm/kasan/report.c:198 [inline]
 [<ffffffff8153a66c>] kasan_report_error mm/kasan/report.c:287 [inline]
 [<ffffffff8153a66c>] kasan_report.part.1+0x21c/0x500 mm/kasan/report.c:309
 [<ffffffff8153aa09>] kasan_report mm/kasan/report.c:330 [inline]
 [<ffffffff8153aa09>] __asan_report_load8_noabort+0x29/0x30 mm/kasan/report.c:330
 [<ffffffff810ddb10>] __read_once_size include/linux/compiler.h:243 [inline]
 [<ffffffff810ddb10>] atomic_read arch/x86/include/asm/atomic.h:26 [inline]
 [<ffffffff810ddb10>] static_key_count include/linux/jump_label.h:174 [inline]
 [<ffffffff810ddb10>] static_key_false include/linux/jump_label.h:184 [inline]
 [<ffffffff810ddb10>] perf_sw_event include/linux/perf_event.h:1039 [inline]
 [<ffffffff810ddb10>] __do_page_fault+0xc80/0xd70 arch/x86/mm/fault.c:1438
 [<ffffffff810ddc27>] do_page_fault+0x27/0x30 arch/x86/mm/fault.c:1460
 [<ffffffff838aa958>] page_fault+0x28/0x30 arch/x86/entry/entry_64.S:1012
Object at ffff8801cd90d2e8, in cache vm_area_struct size: 184
Allocated:
PID = 10781
 save_stack_trace+0x16/0x20 arch/x86/kernel/stacktrace.c:57
 save_stack+0x43/0xd0 mm/kasan/kasan.c:495
 set_track mm/kasan/kasan.c:507 [inline]
 kasan_kmalloc+0xad/0xe0 mm/kasan/kasan.c:598
 kasan_slab_alloc+0x12/0x20 mm/kasan/kasan.c:537
 slab_post_alloc_hook mm/slab.h:417 [inline]
 slab_alloc_node mm/slub.c:2715 [inline]
 slab_alloc mm/slub.c:2723 [inline]
 kmem_cache_alloc+0xba/0x290 mm/slub.c:2728
 kmem_cache_zalloc include/linux/slab.h:626 [inline]
 mmap_region+0x587/0xfd0 mm/mmap.c:1662
 do_mmap+0x57b/0xbe0 mm/mmap.c:1473
 do_mmap_pgoff include/linux/mm.h:2018 [inline]
 vm_mmap_pgoff+0x16b/0x1b0 mm/util.c:305
 SYSC_mmap_pgoff mm/mmap.c:1523 [inline]
 SyS_mmap_pgoff+0xd0/0x560 mm/mmap.c:1481
 SYSC_mmap arch/x86/kernel/sys_x86_64.c:95 [inline]
 SyS_mmap+0x16/0x20 arch/x86/kernel/sys_x86_64.c:86
 entry_SYSCALL_64_fastpath+0x23/0xc6
Freed:
PID = 10795
 save_stack_trace+0x16/0x20 arch/x86/kernel/stacktrace.c:57
 save_stack+0x43/0xd0 mm/kasan/kasan.c:495
 set_track mm/kasan/kasan.c:507 [inline]
 kasan_slab_free+0x73/0xc0 mm/kasan/kasan.c:571
 slab_free_hook mm/slub.c:1355 [inline]
 slab_free_freelist_hook mm/slub.c:1377 [inline]
 slab_free mm/slub.c:2958 [inline]
 kmem_cache_free+0xb2/0x2e0 mm/slub.c:2980
 remove_vma+0x11d/0x160 mm/mmap.c:175
 remove_vma_list mm/mmap.c:2482 [inline]
 do_munmap+0x7ff/0xeb0 mm/mmap.c:2705
 mmap_region+0x14d/0xfd0 mm/mmap.c:1635
 do_mmap+0x57b/0xbe0 mm/mmap.c:1473
 do_mmap_pgoff include/linux/mm.h:2018 [inline]
 vm_mmap_pgoff+0x16b/0x1b0 mm/util.c:305
 SYSC_mmap_pgoff mm/mmap.c:1523 [inline]
 SyS_mmap_pgoff+0xd0/0x560 mm/mmap.c:1481
 SYSC_mmap arch/x86/kernel/sys_x86_64.c:95 [inline]
 SyS_mmap+0x16/0x20 arch/x86/kernel/sys_x86_64.c:86
 entry_SYSCALL_64_fastpath+0x23/0xc6
Memory state around the buggy address:
 ffff8801cd90d200: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
 ffff8801cd90d280: fb fb fb fb fb fc fc fc fc fc fc fc fc fb fb fb
>ffff8801cd90d300: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
                                        ^
 ffff8801cd90d380: fb fb fb fb fc fc fc fc fc fc fc fc fb fb fb fb
 ffff8801cd90d400: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
==================================================================
9pnet_virtio: no channels available for device HHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHHH
SELinux: unrecognized netlink message: protocol=0 nlmsg_type=5 sclass=netlink_route_socket pig=10874 comm=syz-executor0
SELinux: unrecognized netlink message: protocol=0 nlmsg_type=4 sclass=netlink_route_socket pig=10874 comm=syz-executor0
SELinux: unrecognized netlink message: protocol=0 nlmsg_type=5 sclass=netlink_route_socket pig=10899 comm=syz-executor0
SELinux: unrecognized netlink message: protocol=0 nlmsg_type=4 sclass=netlink_route_socket pig=10874 comm=syz-executor0
netlink: 15 bytes leftover after parsing attributes in process `syz-executor5'.
FAULT_FLAG_ALLOW_RETRY missing 30
netlink: 15 bytes leftover after parsing attributes in process `syz-executor5'.
CPU: 0 PID: 10918 Comm: syz-executor7 Tainted: G    B           4.9.64-gfbb7468 #94
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
 ffff8801d013f4e0 ffffffff81d90429 ffff8801d013f7c0 0000000000000000
 ffff8801a9bc6b90 ffff8801d013f6b0 ffff8801a9bc6a80 ffff8801d013f6d8
 ffffffff8165e3c7 ffff880102408040 ffff8801d013f630 00000001cebdd067
Call Trace:
 [<ffffffff81d90429>] __dump_stack lib/dump_stack.c:15 [inline]
 [<ffffffff81d90429>] dump_stack+0xc1/0x128 lib/dump_stack.c:51
 [<ffffffff8165e3c7>] handle_userfault+0xa37/0x1300 fs/userfaultfd.c:323
 [<ffffffff814cd6c1>] do_anonymous_page mm/memory.c:2747 [inline]
 [<ffffffff814cd6c1>] handle_pte_fault mm/memory.c:3488 [inline]
 [<ffffffff814cd6c1>] __handle_mm_fault mm/memory.c:3577 [inline]
 [<ffffffff814cd6c1>] handle_mm_fault+0x1fd1/0x2530 mm/memory.c:3614
 [<ffffffff810dd447>] __do_page_fault+0x5b7/0xd70 arch/x86/mm/fault.c:1396
 [<ffffffff810ddc27>] do_page_fault+0x27/0x30 arch/x86/mm/fault.c:1460
 [<ffffffff838aa958>] page_fault+0x28/0x30 arch/x86/entry/entry_64.S:1012
 [<ffffffff8143127c>] generic_perform_write+0x1dc/0x500 mm/filemap.c:2731
 [<ffffffff81438e58>] __generic_file_write_iter+0x348/0x570 mm/filemap.c:2866
 [<ffffffff81439355>] generic_file_write_iter+0x2d5/0x600 mm/filemap.c:2894
 [<ffffffff8156a9ef>] new_sync_write fs/read_write.c:499 [inline]
 [<ffffffff8156a9ef>] __vfs_write+0x4bf/0x680 fs/read_write.c:512
 [<ffffffff8156c319>] vfs_write+0x189/0x530 fs/read_write.c:560
 [<ffffffff8156fe09>] SYSC_write fs/read_write.c:607 [inline]
 [<ffffffff8156fe09>] SyS_write+0xd9/0x1b0 fs/read_write.c:599
 [<ffffffff838a9785>] entry_SYSCALL_64_fastpath+0x23/0xc6
netlink: 11 bytes leftover after parsing attributes in process `syz-executor0'.
netlink: 11 bytes leftover after parsing attributes in process `syz-executor0'.
device lo entered promiscuous mode
device lo left promiscuous mode
device lo entered promiscuous mode
device lo left promiscuous mode
binder: 11031:11035 ioctl 80605414 2011e000 returned -22
device lo entered promiscuous mode
binder: 11031:11035 ioctl 80605414 2011e000 returned -22
device lo left promiscuous mode
device gre0 entered promiscuous mode
device gre0 entered promiscuous mode
SELinux: unrecognized netlink message: protocol=0 nlmsg_type=9 sclass=netlink_route_socket pig=11102 comm=syz-executor3
SELinux: unrecognized netlink message: protocol=0 nlmsg_type=9 sclass=netlink_route_socket pig=11102 comm=syz-executor3
device gre0 entered promiscuous mode
syz-executor4: vmalloc: allocation failure: 17179869168 bytes, mode:0x24000c2(GFP_KERNEL|__GFP_HIGHMEM)
CPU: 1 PID: 11169 Comm: syz-executor4 Tainted: G    B           4.9.64-gfbb7468 #94
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
 ffff8801ac8af880 ffffffff81d90429 1ffff10035915f13 ffff8801cf5a4800
 ffffffff83ab7d80 0000000000000001 0000000000400000 ffff8801ac8af990
 ffffffff8144ead2 024000c2970cf000 0000000041b58ab3 ffffffff8419115d
Call Trace:
 [<ffffffff81d90429>] __dump_stack lib/dump_stack.c:15 [inline]
 [<ffffffff81d90429>] dump_stack+0xc1/0x128 lib/dump_stack.c:51
 [<ffffffff8144ead2>] warn_alloc+0x212/0x240 mm/page_alloc.c:3054
 [<ffffffff814fc435>] __vmalloc_node_range+0x3f5/0x5f0 mm/vmalloc.c:1722
 [<ffffffff814fc6fb>] __vmalloc_node mm/vmalloc.c:1744 [inline]
 [<ffffffff814fc6fb>] __vmalloc_node_flags mm/vmalloc.c:1758 [inline]
 [<ffffffff814fc6fb>] vmalloc+0x5b/0x70 mm/vmalloc.c:1773
 [<ffffffff83137791>] xt_alloc_entry_offsets+0x41/0x60 net/netfilter/x_tables.c:722
 [<ffffffff833799da>] translate_table+0x21a/0x1e30 net/ipv4/netfilter/ip_tables.c:700
 [<ffffffff8337d7ce>] do_replace net/ipv4/netfilter/ip_tables.c:1151 [inline]
 [<ffffffff8337d7ce>] do_ipt_set_ctl+0x2be/0x470 net/ipv4/netfilter/ip_tables.c:1687
 [<ffffffff83098407>] nf_sockopt net/netfilter/nf_sockopt.c:105 [inline]
 [<ffffffff83098407>] nf_setsockopt+0x67/0xc0 net/netfilter/nf_sockopt.c:114
 [<ffffffff83208321>] ip_setsockopt+0xa1/0xb0 net/ipv4/ip_sockglue.c:1243
 [<ffffffff83227ff2>] tcp_setsockopt+0x82/0xd0 net/ipv4/tcp.c:2736
 [<ffffffff82ed5265>] sock_common_setsockopt+0x95/0xd0 net/core/sock.c:2706
 [<ffffffff82ed2220>] SYSC_setsockopt net/socket.c:1771 [inline]
 [<ffffffff82ed2220>] SyS_setsockopt+0x160/0x250 net/socket.c:1750
 [<ffffffff838a9785>] entry_SYSCALL_64_fastpath+0x23/0xc6
Mem-Info:
active_anon:83907 inactive_anon:55 isolated_anon:0
 active_file:3650 inactive_file:6708 isolated_file:0
 unevictable:0 dirty:92 writeback:0 unstable:0
 slab_reclaimable:6375 slab_unreclaimable:43816
 mapped:22915 shmem:67 pagetables:808 bounce:0
 free:1462432 free_pcp:302 free_cma:0
Node 0 active_anon:339852kB inactive_anon:220kB active_file:14600kB inactive_file:26832kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:91660kB dirty:368kB writeback:0kB shmem:268kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 24576kB writeback_tmp:0kB unstable:0kB pages_scanned:0 all_unreclaimable? no
syz-executor4: vmalloc: allocation failure: 17179869168 bytes, mode:0x24000c2(GFP_KERNEL|__GFP_HIGHMEM)
CPU: 0 PID: 11155 Comm: syz-executor4 Tainted: G    B           4.9.64-gfbb7468 #94
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
 ffff8801aa507880 ffffffff81d90429 1ffff100354a0f13 ffff8801d00c8000
 ffffffff83ab7d80 0000000000000001 0000000000400000 ffff8801aa507990
 ffffffff8144ead2 024000c2f3fbbc68 0000000041b58ab3 ffffffff8419115d
Call Trace:
 [<ffffffff81d90429>] __dump_stack lib/dump_stack.c:15 [inline]
 [<ffffffff81d90429>] dump_stack+0xc1/0x128 lib/dump_stack.c:51
 [<ffffffff8144ead2>] warn_alloc+0x212/0x240 mm/page_alloc.c:3054
 [<ffffffff814fc435>] __vmalloc_node_range+0x3f5/0x5f0 mm/vmalloc.c:1722
 [<ffffffff814fc6fb>] __vmalloc_node mm/vmalloc.c:1744 [inline]
 [<ffffffff814fc6fb>] __vmalloc_node_flags mm/vmalloc.c:1758 [inline]
 [<ffffffff814fc6fb>] vmalloc+0x5b/0x70 mm/vmalloc.c:1773
 [<ffffffff83137791>] xt_alloc_entry_offsets+0x41/0x60 net/netfilter/x_tables.c:722
 [<ffffffff833799da>] translate_table+0x21a/0x1e30 net/ipv4/netfilter/ip_tables.c:700
 [<ffffffff8337d7ce>] do_replace net/ipv4/netfilter/ip_tables.c:1151 [inline]
 [<ffffffff8337d7ce>] do_ipt_set_ctl+0x2be/0x470 net/ipv4/netfilter/ip_tables.c:1687
 [<ffffffff83098407>] nf_sockopt net/netfilter/nf_sockopt.c:105 [inline]
 [<ffffffff83098407>] nf_setsockopt+0x67/0xc0 net/netfilter/nf_sockopt.c:114
 [<ffffffff83208321>] ip_setsockopt+0xa1/0xb0 net/ipv4/ip_sockglue.c:1243
 [<ffffffff83227ff2>] tcp_setsockopt+0x82/0xd0 net/ipv4/tcp.c:2736
 [<ffffffff82ed5265>] sock_common_setsockopt+0x95/0xd0 net/core/sock.c:2706
 [<ffffffff82ed2220>] SYSC_setsockopt net/socket.c:1771 [inline]
 [<ffffffff82ed2220>] SyS_setsockopt+0x160/0x250 net/socket.c:1750
 [<ffffffff838a9785>] entry_SYSCALL_64_fastpath+0x23/0xc6
Mem-Info:
active_anon:85987 inactive_anon:55 isolated_anon:0
 active_file:3650 inactive_file:6708 isolated_file:0
 unevictable:0 dirty:92 writeback:0 unstable:0
 slab_reclaimable:6379 slab_unreclaimable:43835
 mapped:22915 shmem:67 pagetables:813 bounce:0
 free:1460844 free_pcp:254 free_cma:0
Node 0 active_anon:343948kB inactive_anon:220kB active_file:14600kB inactive_file:26832kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:91660kB dirty:368kB writeback:0kB shmem:268kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 24576kB writeback_tmp:0kB unstable:0kB pages_scanned:0 all_unreclaimable? no
DMA free:15908kB min:160kB low:200kB high:240kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB slab_reclaimable:0kB slab_unreclaimable:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
DMA32 free:2981144kB min:30600kB low:38248kB high:45896kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129332kB managed:2981844kB mlocked:0kB slab_reclaimable:0kB slab_unreclaimable:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:700kB local_pcp:48kB free_cma:0kB
Normal free:2846324kB min:36816kB low:46020kB high:55224kB active_anon:343948kB inactive_anon:220kB active_file:14600kB inactive_file:26832kB unevictable:0kB writepending:368kB present:4718592kB managed:3585220kB mlocked:0kB slab_reclaimable:25516kB slab_unreclaimable:175340kB kernel_stack:6656kB pagetables:3252kB bounce:0kB free_pcp:316kB local_pcp:160kB free_cma:0kB
DMA: 1*4kB (U) 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15908kB
Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
10424 total pagecache pages
0 pages in swap cache
Swap cache stats: add 0, delete 0, find 0/0
Free swap  = 0kB
Total swap = 0kB
1965979 pages RAM
0 pages HighMem/MovableOnly
320236 pages reserved
netlink: 13 bytes leftover after parsing attributes in process `syz-executor3'.
netlink: 13 bytes leftover after parsing attributes in process `syz-executor3'.
DMA free:15908kB min:160kB low:200kB high:240kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB slab_reclaimable:0kB slab_unreclaimable:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
lowmem_reserve[]: 0 2910 6411 6411
DMA32 free:2981144kB min:30600kB low:38248kB high:45896kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129332kB managed:2981844kB mlocked:0kB slab_reclaimable:0kB slab_unreclaimable:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:700kB local_pcp:48kB free_cma:0kB
lowmem_reserve[]: 0 0 3501 3501
Normal free:2870144kB min:36816kB low:46020kB high:55224kB active_anon:314656kB inactive_anon:220kB active_file:14624kB inactive_file:26852kB unevictable:0kB writepending:56kB present:4718592kB managed:3585220kB mlocked:0kB slab_reclaimable:25704kB slab_unreclaimable:181464kB kernel_stack:5728kB pagetables:2944kB bounce:0kB free_pcp:1216kB local_pcp:576kB free_cma:0kB
lowmem_reserve[]: 0 0 0 0
DMA: 1*4kB (U) 0*8kB 0*16kB 1*32kB (U) 2*64kB (U) 1*128kB (U) 1*256kB (U) 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15908kB
DMA32: 2*4kB (M) 2*8kB (M) 2*16kB (M) 3*32kB (M) 4*64kB (M) 3*128kB (M) 2*256kB (M) 2*512kB (M) 1*1024kB (M) 2*2048kB (M) 726*4096kB (M) = 2981144kB
Normal: 100*4kB (UME) 40*8kB (UME) 113*16kB (UME) 487*32kB (UME) 706*64kB (UME) 403*128kB (UME) 33*256kB (UE) 9*512kB (UME) 6*1024kB (UM) 2*2048kB (UM) 667*4096kB (M) = 2870208kB
Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
10435 total pagecache pages
0 pages in swap cache
Swap cache stats: add 0, delete 0, find 0/0
Free swap  = 0kB
Total swap = 0kB
1965979 pages RAM
0 pages HighMem/MovableOnly
320236 pages reserved
binder: 11279:11281 ioctl c058534b 205e4000 returned -22
Can not set IPV6_FL_F_REFLECT if flowlabel_consistency sysctl is enable
Can not set IPV6_FL_F_REFLECT if flowlabel_consistency sysctl is enable
binder: 11279:11281 ioctl c058534b 205e4000 returned -22
device gre0 entered promiscuous mode
device gre0 entered promiscuous mode
netlink: 5 bytes leftover after parsing attributes in process `syz-executor1'.
netlink: 5 bytes leftover after parsing attributes in process `syz-executor1'.
netlink: 3 bytes leftover after parsing attributes in process `syz-executor4'.
netlink: 3 bytes leftover after parsing attributes in process `syz-executor4'.
IPVS: Creating netns size=2536 id=20
SELinux: unrecognized netlink message: protocol=9 nlmsg_type=769 sclass=netlink_audit_socket pig=11613 comm=syz-executor7
SELinux: unrecognized netlink message: protocol=9 nlmsg_type=770 sclass=netlink_audit_socket pig=11613 comm=syz-executor7
netlink: 11 bytes leftover after parsing attributes in process `syz-executor7'.
SELinux: unrecognized netlink message: protocol=9 nlmsg_type=770 sclass=netlink_audit_socket pig=11613 comm=syz-executor7
netlink: 11 bytes leftover after parsing attributes in process `syz-executor7'.
pktgen: kernel_thread() failed for cpu 0
pktgen: Cannot create thread for cpu 0 (-4)
pktgen: kernel_thread() failed for cpu 1
pktgen: Cannot create thread for cpu 1 (-4)
pktgen: Initialization failed for all threads
netlink: 64 bytes leftover after parsing attributes in process `syz-executor0'.
netlink: 64 bytes leftover after parsing attributes in process `syz-executor0'.
SELinux: unrecognized netlink message: protocol=6 nlmsg_type=0 sclass=netlink_xfrm_socket pig=11738 comm=syz-executor1
mmap: syz-executor2 (11842): VmData 35434496 exceed data ulimit 0. Update limits or use boot option ignore_rlimit_data.
device gre0 entered promiscuous mode
device gre0 entered promiscuous mode
device gre0 left promiscuous mode
device gre0 entered promiscuous mode
device gre0 left promiscuous mode
device lo entered promiscuous mode
device lo left promiscuous mode
device lo entered promiscuous mode
device lo left promiscuous mode